A Study on MITM (Man in the Middle) Vulnerability in Wireless Network Using 802.1X and EAP

Author

Hwang, Hyunuk ; Jung, Gyeok ; Sohn, KiWook ; Park, Sangseo

Author_Institution

ETRI, Daejeon

fYear

2008

fDate

10-12 Jan. 2008

Firstpage

164

Lastpage

170

Abstract

The security of wireless LAN is being strengthened through a combination of EAP with an 802.1X-based authentication server, with 802.11i as the standard. As such a security technique effectively defends the existing WEP or protocol vulnerabilities, another approach is needed to prove the vulnerability of the wireless LAN. This paper proposes the wireless MITM (man in the middle) framework, which can actively prove the vulnerability of MITM by applying the MITM technique in the wireless LAN environment, whose security is applied using 802.1X and EAP. It also describes the designing of the required functions and modules. This paper proposes that it is possible to collect the wireless LAN authentication information of the unauthorized user using the designed wireless MLTM-framework under the EAP-MD5 and EAP-TTLS environment.

Keywords

message authentication; protocols; telecommunication security; wireless LAN; EAP; EAP-TTLS environment; IEEE 802.1X; MITM vulnerability; extensible authentication protocol; man in the middle vulnerability; tunneled transport layer security; wireless LAN security; Authentication; Communication system security; Cryptography; Hardware; Information science; Information security; Network servers; Wireless LAN; Wireless application protocol; Wireless networks;

fLanguage

English

Publisher

ieee

Conference_Titel

Information Science and Security, 2008. ICISS. International Conference on

Conference_Location

Seoul

Print_ISBN

978-0-7695-3080-2

Type

conf

DOI

10.1109/ICISS.2008.10

Filename

4438228